WINELOADER Analysis

Malicious RDP Files Identified in Latest Attack on Ukrainian Entities

Wineloader - Analysis of the Infection Chain

An Analysis of WINELOADER

APT29 Uses WINELOADER to Target German Political Parties

TeamCity Intrusion Saga: APT29 Suspected Among the Attackers Exploiting CVE-2023-42793

Backchannel Diplomacy: APT29’s Rapidly Evolving Diplomatic Phishing Operations

How an APT technique turns to be a public Red Team Project

Evolution of Russian APT29 – New Attacks and Techniques Uncovered

NOBELIUM Uses Poland's Ambassador’s Visit to the U.S. to Target EU Governments Assisting Ukraine

BlueBravo Uses Ambassador Lure to Deploy GraphicalNeutrino Malware

Cloaked Ursa (APT29) Hackers Use Trusted Online Storage Services

Brute Ratel C4 Red Teaming Tool Being Abused by Malicious Actors

Infrastructure Patterns Lead to More Than 30 Active APT29 C2 Servers

NobleBaron New Poisoned Installers Could Be Used In Supply Chain Attacks

Suspected APT29 Operation Launches Election Fraud Themed Phishing Campaigns

APT29 targets COVID-19 vaccine development

The Dukes aren’t back — they never left

Possible New APT29 Malware

APT29 Domain Fronting With TOR